Snort mailing list archives

Re: cmd.exe

From: Martin Forest <martin () heimdalls co nz>
Date: Mon, 29 Apr 2002 23:27:58 +1200

Yes, a LOT. It is currently nr 1 attack. Have a look athttp://aris.securityfocus.com/

/Martin Forest
Heimdall's Limited
New Zealand

Ronald Prins wrote:

We are monitoring multiple sensors for a number of customers (The
Netherlands). We noticed a recent increase in the number of SID: 1002

"cmd.exe" attempts.

Have others noticed the same?

Ronald.


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users





_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

cmd.exe Ronald Prins (Apr 29)
- Re: cmd.exe Martin Forest (Apr 29)
- Re: cmd.exe Grace Pittmon (Apr 29)
- Re: cmd.exe Michael Scheidell (Apr 29)
- <Possible follow-ups>
- RE: cmd.exe Potts, Ross A. (Apr 29)